Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
File: vmBP81opyRFWvkvSKbO693yDl70.mft (raw, json)
Hash identifier: fvjxQvZU8Y9NeGanVtcG7SOPCRs5kkTywsbTBQWGtMg=
Subject key identifier: 3F:CD:41:21:C1:06:90:80:7B:EF:E0:70:D0:0F:00:E3:74:E2:36:47
Authority key identifier: BE:60:4F:F3:5A:29:C9:11:56:BE:4B:D2:29:B3:BA:F7:7C:83:97:BD
Certificate issuer: /CN=be604ff35a29c91156be4bd229b3baf77c8397bd
Certificate serial: 0198496504F40AE0235D8FA54BB82237A16A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
Manifest number: 082A
Signing time: Sun 27 Jul 2025 01:00:13 +0000
Manifest this update: Sun 27 Jul 2025 01:00:13 +0000
Manifest next update: Mon 28 Jul 2025 01:00:13 +0000
Files and hashes: 1: 8TP605-bnnRU4oKxlSCpw5mXUvE.roa (hash: mDnmEgfw91sdWLEWlPQZ2jWiCvBV4IYovQSRnJwJt28=)
2: vmBP81opyRFWvkvSKbO693yDl70.crl (hash: eFFwUfGD9sQWb7O2MSgXUaSsbVdX2r+UplZQ0xX8zBg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:65:04:f4:0a:e0:23:5d:8f:a5:4b:b8:22:37:a1:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be604ff35a29c91156be4bd229b3baf77c8397bd
Validity
Not Before: Jul 27 01:00:13 2025 GMT
Not After : Jul 28 01:00:13 2025 GMT
Subject: CN=3fcd4121c10690807befe070d00f00e374e23647
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:09:69:3d:9f:c5:72:cf:ce:c0:30:6b:54:46:
a9:0c:26:54:52:8b:df:57:57:9e:b7:e7:4f:be:b6:
79:98:35:0c:3c:02:fc:83:7e:6d:52:00:eb:f5:fa:
85:09:9a:3c:a4:86:6c:ea:b4:9a:af:7f:dd:7c:79:
a0:5a:28:44:a9:70:d2:e9:9f:05:d0:91:9b:e6:6b:
31:1e:ad:ee:dc:2c:4d:65:51:2e:21:04:d5:be:fa:
51:71:f8:87:56:84:55:3b:38:42:88:ad:3b:f9:38:
8c:1b:58:e8:1c:a2:c8:d4:d8:42:7e:4d:51:9b:90:
da:95:96:0b:a5:92:d4:9e:c0:74:20:69:77:5e:80:
c9:af:52:ca:27:46:8a:ff:62:d5:be:a6:6a:37:fe:
c6:f7:56:df:bb:af:65:53:4c:a6:03:38:25:14:b2:
54:cf:24:d2:07:2f:f7:0a:d6:17:25:29:83:2b:1b:
cd:93:a4:c8:0d:55:76:9d:8d:37:de:6c:b1:03:c9:
b8:9e:a2:9b:35:4e:f9:4b:12:8a:46:06:dd:1c:37:
ed:51:fe:eb:07:54:1a:4e:c5:f2:d5:1f:2e:d0:68:
37:41:5e:36:ef:99:54:61:a1:11:ff:15:1a:25:99:
6d:33:62:f1:71:49:71:8f:a0:4c:89:6c:88:be:e7:
48:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:CD:41:21:C1:06:90:80:7B:EF:E0:70:D0:0F:00:E3:74:E2:36:47
X509v3 Authority Key Identifier:
keyid:BE:60:4F:F3:5A:29:C9:11:56:BE:4B:D2:29:B3:BA:F7:7C:83:97:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:06:db:0a:b9:22:3e:ed:35:c3:40:8c:df:b3:7a:dd:05:fe:
eb:b8:92:22:64:df:de:41:9e:51:93:61:87:99:32:db:96:b0:
00:eb:b5:8c:f8:8e:89:16:d8:cb:02:09:65:69:61:81:ff:75:
a5:81:2d:00:89:95:e5:6f:d0:2d:71:0f:bf:44:bb:13:c5:ce:
71:ba:54:94:8e:9b:2f:2b:8c:db:05:2c:b9:38:0c:82:6d:fb:
e2:d7:67:13:e8:c3:00:8d:46:3b:6a:88:d5:9b:4e:37:85:3a:
ad:08:4d:f3:9d:07:97:b3:ad:91:39:f3:1e:29:fe:66:5d:d1:
04:7c:4b:39:63:fc:da:bf:2f:e6:0f:9f:65:00:3e:4c:d4:e5:
4d:e4:ae:a3:70:7b:0e:96:23:a1:aa:41:a3:37:03:3a:d6:d0:
84:ef:24:07:94:a3:98:b3:66:36:f8:7b:f2:cf:25:1c:29:6d:
9d:34:86:17:f4:86:e8:a4:0a:cb:dd:0e:fe:f4:0d:ea:f5:df:
dd:fb:ce:59:5d:70:04:b0:e8:a6:72:cc:1b:1c:76:df:de:5e:
ea:8a:51:c5:e2:81:7a:82:d9:25:5f:bf:9f:31:81:6a:22:fb:
4a:0e:07:ca:82:ec:1a:15:fc:20:23:76:97:e3:c3:1a:61:11:
1e:59:a7:3b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhJZQT0CuAjXY+lS7giN6FqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJlNjA0ZmYzNWEyOWM5MTE1NmJlNGJkMjI5YjNiYWY3N2M4
Mzk3YmQwHhcNMjUwNzI3MDEwMDEzWhcNMjUwNzI4MDEwMDEzWjAzMTEwLwYDVQQD
EygzZmNkNDEyMWMxMDY5MDgwN2JlZmUwNzBkMDBmMDBlMzc0ZTIzNjQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvglpPZ/Fcs/OwDBrVEapDCZUUovf
V1eet+dPvrZ5mDUMPAL8g35tUgDr9fqFCZo8pIZs6rSar3/dfHmgWihEqXDS6Z8F
0JGb5msxHq3u3CxNZVEuIQTVvvpRcfiHVoRVOzhCiK07+TiMG1joHKLI1NhCfk1R
m5DalZYLpZLUnsB0IGl3XoDJr1LKJ0aK/2LVvqZqN/7G91bfu69lU0ymAzglFLJU
zyTSBy/3CtYXJSmDKxvNk6TIDVV2nY033myxA8m4nqKbNU75SxKKRgbdHDftUf7r
B1QaTsXy1R8u0Gg3QV4275lUYaER/xUaJZltM2LxcUlxj6BMiWyIvudIzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD/NQSHBBpCAe+/gcNAPAON04jZHMB8GA1UdIwQY
MBaAFL5gT/NaKckRVr5L0imzuvd8g5e9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdm1CUDgxb3B5UkZXdmt2U0tiTzY5M3lEbDcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9lODQ5YmItMTMwNC00NGVhLTgzOGYt
MWEzOWMzZDM0ZjA4LzEvdm1CUDgxb3B5UkZXdmt2U0tiTzY5M3lEbDcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi9lODQ5YmItMTMwNC00NGVhLTgzOGYtMWEzOWMzZDM0ZjA4
LzEvdm1CUDgxb3B5UkZXdmt2U0tiTzY5M3lEbDcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlAbbCrki
Pu01w0CM37N63QX+67iSImTf3kGeUZNhh5ky25awAOu1jPiOiRbYywIJZWlhgf91
pYEtAImV5W/QLXEPv0S7E8XOcbpUlI6bLyuM2wUsuTgMgm374tdnE+jDAI1GO2qI
1ZtON4U6rQhN850Hl7OtkTnzHin+Zl3RBHxLOWP82r8v5g+fZQA+TNTlTeSuo3B7
DpYjoapBozcDOtbQhO8kB5SjmLNmNvh78s8lHCltnTSGF/SG6KQKy90O/vQN6vXf
3fvOWV1wBLDopnLMGxx2395e6opRxeKBeoLZJV+/nzGBaiL7Sg4HyoLsGhX8ICN2
l+PDGmERHlmnOw==
-----END CERTIFICATE-----
Generated at Sun Jul 27 10:02:00 2025 by rpki-client